TZUTC: -0500   
   MSGID: 1574.consprcy@1:2320/105 2d4cfb37   
   PID: Synchronet 3.21a-Linux master/123f2d28a Jul 12 2025 GCC 12.2.0   
   TID: SBBSecho 3.28-Linux master/123f2d28a Jul 12 2025 GCC 12.2.0   
   BBSID: CAPCITY2   
   CHRS: ASCII 1   
   FORMAT: flowed   
   Watch out - your workers might be pasting company secrets into ChatGPT   
      
   Date:   
   Wed, 08 Oct 2025 17:02:00 +0000   
      
   Description:   
   You can add ChatGPT to the list of Shadow IT apps that need monitoring.   
      
   FULL STORY   
      
   ChatGPT and other Generative Artificial Intelligence ( GenAI ) tools are   
   transforming what risk of Shadow IT means, new research has found, as   
   employees are becoming a little too open - and many have even provided the   
   tool with Personally Identifiable Information (PII) or Payment Card Industry   
   (PCI) numbers willingly.    
      
   Shadow IT is the practice of using programs and apps in a business    
   environment that werent approved or otherwise vetted by the IT security   
   department. Employees often use apps theyre not allowed to because its easy   
   and convenient - things like web-based image-to-pdf converters , WhatsApp,   
   personal cloud storage solutions like Dropbox, and similar.    
      
   But research from LayerX claims this is opening up companies to all sorts of   
   cyber-risks, from introducing malware and ransomware to corporate   
   infrastructure, to leaking sensitive data via unprotected cloud storage, or   
   uploading classified documents to shady services.   
      
   Pasting secrets    
      
   The companys latest Enterprise AI and SaaS Data Security Report 2025 found   
   almost half (45%) of enterprise employees are now using generative AI in one   
   form or another.    
      
   Of those, more than three-quarters (77%) have been copying and pasting data   
   into the tool, and almost a quarter (22%) have done the same with PII/PCI.    
      
   "With 82 percent of pastes coming from unmanaged personal accounts,   
   enterprises have little to no visibility into what data is being shared,   
   creating a massive blind spot for data leakage and compliance risks," the   
   report says.    
      
   Furthermore, roughly two in five files uploaded to generative AI sites also   
   contain this type of information, while 39% of these uploads came from   
   non-corporate accounts.    
      
   ChatGPT is by far the most popular GenAI tool, with more than 90% of    
   employees using it. The vast majority (around 83%) use just one tool. Other   
   notable mentions include Gemini (15%), Claude (5%), and Copilot (around 3%).    
      
    Via The Register    
      
   ======================================================================   
   Link to news story:   
   https://www.techradar.com/pro/security/watch-out-your-workers-might-be-pasting   
   -company-secrets-into-chatgpt   
      
   $$   
   --- SBBSecho 3.28-Linux   
    * Origin: capitolcityonline.net * Telnet/SSH:2022/HTTP (1:2320/105)   
   SEEN-BY: 105/81 106/201 128/187 129/14 305 153/7715 154/110 218/700   
   SEEN-BY: 226/30 227/114 229/110 111 206 300 307 317 400 426 428 470   
   SEEN-BY: 229/664 700 705 266/512 291/111 320/219 322/757 342/200 396/45   
   SEEN-BY: 460/58 633/280 712/848 902/26 2320/0 105 304 3634/12 5075/35   
   PATH: 2320/105 229/426